Permission Dependency of the Anti-DDoS Console
When using Anti-DDoS, you may need to view resources of or use other cloud services. So you need to obtain required permissions for dependent services so that you can view resources or use Anti-DDoS functions on the Anti-DDoS console. To that end, make sure you have the Anti-DDoS Administrator assigned first. For details, see Creating a User Group and Assigning the Anti-DDoS Access Permission.
Dependency Policy Configuration
If an IAM user needs to view or use related functions on the console, ensure that the Anti-DDoS Administrator policy has been assigned to the user group to which the user belongs. Then, add roles or policies of dependent services based on the following Table 1.
Console Function |
Dependent Service |
Role or Policy |
|---|---|---|
Configuring Anti-DDoS logs on LTS |
Log Tank Service (LTS) |
The LTS ReadOnlyAccess system policy is required to select log group and log stream names created in LTS. |
Enabling alarm notifications |
Simple Message Notification (SMN) |
The SMN ReadOnlyAccess system policy is required to obtain SMN topic groups. |
Adding a tag to an Anti-DDoS instance |
Tag Management Service (TMS) |
Tag keys can be created only after the TMS FullAccess system policy is added. |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
